bisecting cause commit starting from 414e6c8e941caae43f7b25f8014c2b5e2100679d building syzkaller on 8bcc32a67bc7180173447e1a78c03dae096b4231 testing commit 414e6c8e941caae43f7b25f8014c2b5e2100679d compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: e007a963b26ade9cb103fccc46c56ac65e0d43d4d739b935ab34a1ff2acdc682 run #0: crashed: general protection fault in del_gendisk run #1: crashed: general protection fault in del_gendisk run #2: crashed: general protection fault in del_gendisk run #3: crashed: general protection fault in kernfs_name_hash run #4: crashed: general protection fault in del_gendisk run #5: crashed: general protection fault in kernfs_name_hash run #6: crashed: general protection fault in kernfs_name_hash run #7: crashed: general protection fault in kernfs_name_hash run #8: crashed: general protection fault in del_gendisk run #9: crashed: general protection fault in del_gendisk run #10: crashed: general protection fault in kernfs_name_hash run #11: crashed: general protection fault in del_gendisk run #12: crashed: general protection fault in del_gendisk run #13: crashed: general protection fault in del_gendisk run #14: crashed: general protection fault in kernfs_name_hash run #15: crashed: general protection fault in del_gendisk run #16: crashed: general protection fault in del_gendisk run #17: crashed: general protection fault in kernfs_name_hash run #18: crashed: general protection fault in del_gendisk run #19: crashed: general protection fault in del_gendisk testing release v5.10.109 testing commit d9c5818a0bc09e4cc9fe663edb69e4d6cdae4f70 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 4439ab8523d52e3423687b587df1d933b773a7425f58f4905eb448e78961899c all runs: OK # git bisect start 414e6c8e941caae43f7b25f8014c2b5e2100679d d9c5818a0bc09e4cc9fe663edb69e4d6cdae4f70 Bisecting: 2863 revisions left to test after this (roughly 12 steps) [fb54b8b3f0dcd3f43c942b514e8db0669cd606a8] FROMLIST: procfs: Allow reading fdinfo with PTRACE_MODE_READ testing commit fb54b8b3f0dcd3f43c942b514e8db0669cd606a8 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: fda0ab7f2deed43b7043c5d98099416ced6a5f115855d123f2007274ee0ccc5d all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip fb54b8b3f0dcd3f43c942b514e8db0669cd606a8 Bisecting: 2861 revisions left to test after this (roughly 12 steps) [e09764eb7da7fe2c5d52153c97aa262c217fb9a4] BACKPORT: FROMLIST: dma-buf: dma-heap: Provide accessor to get heap name testing commit e09764eb7da7fe2c5d52153c97aa262c217fb9a4 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: dbf61933cb3aa44da1204a1e562be425e42aedc09fa1f920d8786a0f7496dfa7 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip e09764eb7da7fe2c5d52153c97aa262c217fb9a4 Bisecting: 2861 revisions left to test after this (roughly 12 steps) [d0bd662427de5d26d02ee5ad0bcf56cab05f8513] FROMGIT: scsi: ufs: Use DBD setting in mode sense testing commit d0bd662427de5d26d02ee5ad0bcf56cab05f8513 compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 03cb504e97343c61237843db70497e73bcf27d9a7abe91f026b5f90f91cd224b all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip d0bd662427de5d26d02ee5ad0bcf56cab05f8513 Bisecting: 2861 revisions left to test after this (roughly 12 steps) [b1624bb7d80f0f637becaf35ed3c3d9c82c2340b] UPSTREAM: kasan: only build init.c for software modes testing commit b1624bb7d80f0f637becaf35ed3c3d9c82c2340b compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 ./include/linux/kasan.h:48:41: error: 'KASAN_SHADOW_SCALE_SHIFT' undeclared (first use in this function) ./include/linux/kasan.h:49:5: error: 'KASAN_SHADOW_OFFSET' undeclared (first use in this function); did you mean 'KASAN_SHADOW_INIT'? # git bisect skip b1624bb7d80f0f637becaf35ed3c3d9c82c2340b Bisecting: 2861 revisions left to test after this (roughly 12 steps) [92381c512b9d155d06cab0b014eb206353b765ef] ANDROID: x86/vdso: disable LTO only for VDSO testing commit 92381c512b9d155d06cab0b014eb206353b765ef compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 6050eafb6818b9f566730dbb76c4239066790f5f29d43a0ec27bf361f6f06eea all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 92381c512b9d155d06cab0b014eb206353b765ef Bisecting: 2861 revisions left to test after this (roughly 12 steps) [7ac8008a5d61a5c276454419942149aa0ff897ef] FROMGIT: usb: typec: tps6598x: Fix return value check in tps6598x_probe() testing commit 7ac8008a5d61a5c276454419942149aa0ff897ef compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 1b88cf6ff9e9ac36220ab5bc2e054fe3d3a3bbef07e87ddafaf355859c4e64f9 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 7ac8008a5d61a5c276454419942149aa0ff897ef Bisecting: 2861 revisions left to test after this (roughly 12 steps) [ff7eccee305a3add132462b90908bf27993bcd17] ANDROID: Update the exynos symbol list testing commit ff7eccee305a3add132462b90908bf27993bcd17 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 6b5772f32d97bc256f3745b265991117edecab38da19630408b69b411a58f72c run #0: crashed: general protection fault in kernfs_name_hash run #1: crashed: general protection fault in del_gendisk run #2: crashed: general protection fault in kernfs_name_hash run #3: crashed: general protection fault in kernfs_name_hash run #4: crashed: general protection fault in del_gendisk run #5: crashed: general protection fault in kernfs_name_hash run #6: crashed: general protection fault in del_gendisk run #7: crashed: general protection fault in del_gendisk run #8: crashed: general protection fault in kernfs_name_hash run #9: crashed: general protection fault in del_gendisk # git bisect bad ff7eccee305a3add132462b90908bf27993bcd17 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [23ba990a3e2dde197de4ae7dcca16503d0528dc0] FROMLIST: mm: cma: introduce gfp flag in cma_alloc instead of no_warn testing commit 23ba990a3e2dde197de4ae7dcca16503d0528dc0 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 5894f06bdba03acf73c4f0f68714fc36c1a1f52e935b8ee8dcc0c384bffbbfa4 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 23ba990a3e2dde197de4ae7dcca16503d0528dc0 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [70f5857ed0b997cc08bc1abb3f100a361cb9118e] FROMGIT: kasan: clean up setting free info in kasan_slab_free testing commit 70f5857ed0b997cc08bc1abb3f100a361cb9118e compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 mm/memory.c:4800:10: error: assignment of member 'vma' in read-only object mm/memory.c:4942:12: error: assignment of member 'pgoff' in read-only object mm/memory.c:4943:15: error: assignment of member 'gfp_mask' in read-only object # git bisect skip 70f5857ed0b997cc08bc1abb3f100a361cb9118e Bisecting: 2466 revisions left to test after this (roughly 11 steps) [18eae90751d3aaeab40564722d97523b4aecf942] FROMGIT: timer_list: Print name of per-cpu wakeup device testing commit 18eae90751d3aaeab40564722d97523b4aecf942 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 5e3ed98ba72b18b85024dbd6b2cc6db58edaaac4d30d8ca4fbcfd4f9f66709cb all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 18eae90751d3aaeab40564722d97523b4aecf942 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [6566f43c59c5787ffd08f9b977452b5f69ddeb39] FROMLIST: irqchip: irq-meson-gpio: make it possible to build as a module testing commit 6566f43c59c5787ffd08f9b977452b5f69ddeb39 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 mm/memory.c:4800:10: error: assignment of member 'vma' in read-only object mm/memory.c:4942:12: error: assignment of member 'pgoff' in read-only object mm/memory.c:4943:15: error: assignment of member 'gfp_mask' in read-only object # git bisect skip 6566f43c59c5787ffd08f9b977452b5f69ddeb39 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [d79aca773dd42338dd1d9dcba9edb731ca613f45] FROMGIT: usb: typec: tcpm: Use LE to CPU conversion when accessing msg->header testing commit d79aca773dd42338dd1d9dcba9edb731ca613f45 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: fe883790bf5d8e9ed05f1c35c35a31336d126147174979dd110c50c758df8170 run #0: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns run #1: basic kernel testing failed: lost connection to test machine run #2: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns run #3: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns run #4: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns run #5: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns run #6: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns run #7: boot failed: can't ssh into the instance run #8: boot failed: can't ssh into the instance run #9: boot failed: can't ssh into the instance # git bisect skip d79aca773dd42338dd1d9dcba9edb731ca613f45 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [b0a1ef000f53269fb8620a0ca3099a6324f5044e] UPSTREAM: usb: dwc3: gadget: Implement setting of SSP rate testing commit b0a1ef000f53269fb8620a0ca3099a6324f5044e compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 39a41dc6f792fb4f2e6f5dd589debe2b53454ec0594cb9ff22a577fa07fb299b all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip b0a1ef000f53269fb8620a0ca3099a6324f5044e Bisecting: 2466 revisions left to test after this (roughly 11 steps) [c58df626a9e0af7f6292f33eb3cae76a4697c4f3] ANDROID: Incremental fs: Fix crash on failed lookup testing commit c58df626a9e0af7f6292f33eb3cae76a4697c4f3 compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 20753d88f96dad43165e6337f779b29e2984665db38e3c1784f19f8e90d3f945 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip c58df626a9e0af7f6292f33eb3cae76a4697c4f3 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [0b24bdb73c5ace1b7cd7106d5d4df1c4898a9bce] UPSTREAM: arm64: sdei: Push IS_ENABLED() checks down to callee functions testing commit 0b24bdb73c5ace1b7cd7106d5d4df1c4898a9bce compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 1a82b3c6ff8ba8094b14e18e8c0d1fbf5d3020da66443939e7bd2efa13bc0d4f all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 0b24bdb73c5ace1b7cd7106d5d4df1c4898a9bce Bisecting: 2466 revisions left to test after this (roughly 11 steps) [78e33c3f95d6311f749ac6c02e853a1b020dce8c] FROMLIST: f2fs: fix wrong check on F2FS_IOC_FSSETXATTR testing commit 78e33c3f95d6311f749ac6c02e853a1b020dce8c compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 4236d819040d87c64adac95230128e8b3a9e14443bd106a2d8893f72fc7586c7 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 78e33c3f95d6311f749ac6c02e853a1b020dce8c Bisecting: 2466 revisions left to test after this (roughly 11 steps) [c71118016dafc1ec6854360b8c3f7274991fdcf0] ANDROID: GKI: Update ABI XML report testing commit c71118016dafc1ec6854360b8c3f7274991fdcf0 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: c5eadd70b6fa2ee7b8de93819b38f3c46aae650d9b6d26864a10ee1ceed28faa all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip c71118016dafc1ec6854360b8c3f7274991fdcf0 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [0126a08dcd20c7bfdaf481761ddb9da654d7df9e] UPSTREAM: crypto: arm/blake2b - drop unnecessary return statement testing commit 0126a08dcd20c7bfdaf481761ddb9da654d7df9e compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: b56560584edf6fe0d8bbeaae123f9269ed9296d554ac1722838e797bbadd8d64 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 0126a08dcd20c7bfdaf481761ddb9da654d7df9e Bisecting: 2466 revisions left to test after this (roughly 11 steps) [1f7c7b74e39a4a3967f32a2c04b0204c4e593b07] ANDROID: GKI: provide initial snapshot for android12-5.10 .xml testing commit 1f7c7b74e39a4a3967f32a2c04b0204c4e593b07 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: aade1a6a9a4af78a20aa85bda3758351b663d445652fc097cbf4c0ed8d483e21 all runs: basic kernel testing failed: BUG: unable to handle kernel paging request in task_active_pid_ns # git bisect skip 1f7c7b74e39a4a3967f32a2c04b0204c4e593b07 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [fad68b8babdea151a76fb6fc9ac82521b3ef7b6d] FROMGIT: phy: qcom-qusb2: Re add "qcom,sdm845-qusb2-phy" compat string testing commit fad68b8babdea151a76fb6fc9ac82521b3ef7b6d compiler: gcc version 8.4.1 20210217 (GCC), GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: a246fa212f1a189aa357812b66cdd2d6915f0a367646d440b3fff83c34efb2be all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip fad68b8babdea151a76fb6fc9ac82521b3ef7b6d Bisecting: 2466 revisions left to test after this (roughly 11 steps) [d7095e2017ee7035c52f11b7fe127229c34da969] UPSTREAM: arm64: mte: reset the page tag in page->flags testing commit d7095e2017ee7035c52f11b7fe127229c34da969 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 ./include/linux/kasan.h:48:41: error: 'KASAN_SHADOW_SCALE_SHIFT' undeclared (first use in this function) ./include/linux/kasan.h:49:5: error: 'KASAN_SHADOW_OFFSET' undeclared (first use in this function); did you mean 'KASAN_SHADOW_INIT'? # git bisect skip d7095e2017ee7035c52f11b7fe127229c34da969 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [759502a4b8b587037d062028bfde18048c36ea3e] ANDROID: dm-default-key: avoid truncating the logical block size testing commit 759502a4b8b587037d062028bfde18048c36ea3e compiler: gcc version 8.4.1 20210217 (GCC), GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 78ec1d783fece44ed6f6945626cf8221b6c27d5013d3ce3a51b6d90a408d3460 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 759502a4b8b587037d062028bfde18048c36ea3e Bisecting: 2466 revisions left to test after this (roughly 11 steps) [c88c78c2d2d372ea3c0672323ef4214edeb3fdb6] UPSTREAM: arm64: mte: optimize asynchronous tag check fault flag check testing commit c88c78c2d2d372ea3c0672323ef4214edeb3fdb6 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 6da38411af71ac49f3e8227829dff5231d5181949115d72d5b776b838ca1d8e8 all runs: basic kernel testing failed: BUG: unable to handle kernel paging request in task_active_pid_ns # git bisect skip c88c78c2d2d372ea3c0672323ef4214edeb3fdb6 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [987d0b5bcf096a478aaf96faf5a288b4c95e9d37] FROMGIT: of: property: Improve cycle detection when one of the devices is never added testing commit 987d0b5bcf096a478aaf96faf5a288b4c95e9d37 compiler: gcc (GCC) 8.4.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 4087cc8dd825d2e89795f95d7eeb48290616724e17f273fdefc05062483cdfd2 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 987d0b5bcf096a478aaf96faf5a288b4c95e9d37 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [eb1e4aab81fbe43a53be2a92a7392c2a7202e129] UPSTREAM: KVM: arm64: Remove kvm_arch_vm_ioctl_check_extension() testing commit eb1e4aab81fbe43a53be2a92a7392c2a7202e129 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 695f8ed132af0497677dae609b42dcd5b4982496cfb5caa79c9cb843ce73bccc all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip eb1e4aab81fbe43a53be2a92a7392c2a7202e129 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [edc147a8f06d03dcb5c1cfa4e7a3ed2af457a851] Revert "FROMLIST: fix arm64 build with lack of __cpu_logical_map exported" testing commit edc147a8f06d03dcb5c1cfa4e7a3ed2af457a851 compiler: gcc (GCC) 8.4.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: b324590bc2e17f972486ba4cf9b773ceeffe553384d0f6025cc5bb1fbfaf8a34 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip edc147a8f06d03dcb5c1cfa4e7a3ed2af457a851 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [b742959e1a5100739859eded1982b29aa2945218] UPSTREAM: KVM: arm64: Map AArch32 cp15 register to AArch64 sysregs testing commit b742959e1a5100739859eded1982b29aa2945218 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 40491681f8f24944015ea97f2b2252c65811498c265cf1337314649944b09369 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip b742959e1a5100739859eded1982b29aa2945218 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [75f172538cda471106d7c58d215e002eafa25f77] FROMLIST: stm class: ftrace: change dependency to TRACING testing commit 75f172538cda471106d7c58d215e002eafa25f77 compiler: gcc (GCC) 8.4.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 86bd87b3d394f34bfcd24ff34027506485e4b42aa4b317b090a3247eecbdced4 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 75f172538cda471106d7c58d215e002eafa25f77 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [2a06c0a46264d3a8a64885f6148aa715e0eb315f] ANDROID: dma-buf: fix return type mismatch testing commit 2a06c0a46264d3a8a64885f6148aa715e0eb315f compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: ed088fca6fd1aeb98a8bd65edcf181ce2d335a91dbfd3af6e6b4b7602896fb3f all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 2a06c0a46264d3a8a64885f6148aa715e0eb315f Bisecting: 2466 revisions left to test after this (roughly 11 steps) [462c92e8f2278ee2f2a94822b06e207e183f6c75] FROMGIT: usb: typec: tcpci: Added few missing TCPCI register definitions testing commit 462c92e8f2278ee2f2a94822b06e207e183f6c75 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 8ae7f936bb6792ae16ff2ee3d5c19848a4bc434b5a8e63b44a8c19872ddad572 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 462c92e8f2278ee2f2a94822b06e207e183f6c75 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [1ad9551f1d90e304f55f86618143b355f40315fe] BACKPORT: arm64: expose FAR_EL1 tag bits in siginfo testing commit 1ad9551f1d90e304f55f86618143b355f40315fe compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 0c5d1f7384a8ac3b960bec1c5415df892595e2005d39f9490d1f3a7751aa6686 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 1ad9551f1d90e304f55f86618143b355f40315fe Bisecting: 2466 revisions left to test after this (roughly 11 steps) [2c728929c10e91152babdf6e4ab8db1aeeeb2908] ANDROID: qcom: Add devm_blk_ksm_init to ABI testing commit 2c728929c10e91152babdf6e4ab8db1aeeeb2908 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 15a1579ace68a9421f18503189c8990b3bbac0a5cc4f7532e5f3c13b0c9e195d all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 2c728929c10e91152babdf6e4ab8db1aeeeb2908 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [760b82c9b88d2c8125abfc5f732cc3cd460b2a54] ANDROID: sched/fair: Bias EAS placement for latency testing commit 760b82c9b88d2c8125abfc5f732cc3cd460b2a54 compiler: gcc version 8.4.1 20210217 (GCC) kernel signature: 75e47c1464cc9ca2f6458a44bad6212cf99323b29be2ab49ca520e86d7690611 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip 760b82c9b88d2c8125abfc5f732cc3cd460b2a54 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [f1a25121dd6ac8ae0c1d6a473ea36145040bd2a6] ANDROID: dma-buf: Cleanup minor usage in "Add proper kref handling on dma-buf heaps" testing commit f1a25121dd6ac8ae0c1d6a473ea36145040bd2a6 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: ff7cbad6ed9b407c6da5a78701eaf7a92325abfebb1b2cd5e06bfebcef358c34 all runs: basic kernel testing failed: KASAN: use-after-free Read in task_active_pid_ns # git bisect skip f1a25121dd6ac8ae0c1d6a473ea36145040bd2a6 Bisecting: 2466 revisions left to test after this (roughly 11 steps) [aac5a77959999b5707d604a70dad21f764b27446] ANDROID: Update symbol list for mtk testing commit aac5a77959999b5707d604a70dad21f764b27446 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 299e13b8f6f419b9d356416d5194f2883043fd67103a2491a55c5d741e85bc58 all runs: OK # git bisect good aac5a77959999b5707d604a70dad21f764b27446 Bisecting: 43 revisions left to test after this (roughly 6 steps) [7a686fd9a5694413421453bc5b2066f156c529d5] ANDROID: ABI: update allowed list for galaxy testing commit 7a686fd9a5694413421453bc5b2066f156c529d5 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: be2b5ec74c95f22f252892f38409a5cfbd89919b7430047251ea5641a050a1d5 all runs: OK # git bisect good 7a686fd9a5694413421453bc5b2066f156c529d5 Bisecting: 21 revisions left to test after this (roughly 5 steps) [bed43a725d3c3f9fc153339f2e2a4f879e717be5] FROMGIT: usb: dwc3: gadget: Avoid runtime resume if disabling pullup testing commit bed43a725d3c3f9fc153339f2e2a4f879e717be5 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: dd01a674ee160629277919e5d88e8789dc6922a93d68fb7e2bc50956184fa67a all runs: OK # git bisect good bed43a725d3c3f9fc153339f2e2a4f879e717be5 Bisecting: 10 revisions left to test after this (roughly 4 steps) [e06796855dc7e4495e27cb1fb5821f334798e1ed] ANDROID: ABI: update allowed list for exynos testing commit e06796855dc7e4495e27cb1fb5821f334798e1ed compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 588ed9f6cb4a4cbd624974279e3976a5bcee55cf4bd28d6890f934a1aba81b8d run #0: crashed: general protection fault in kernfs_name_hash run #1: crashed: general protection fault in del_gendisk run #2: crashed: general protection fault in kernfs_name_hash run #3: crashed: general protection fault in del_gendisk run #4: crashed: general protection fault in kernfs_name_hash run #5: crashed: general protection fault in kernfs_name_hash run #6: crashed: general protection fault in kernfs_name_hash run #7: crashed: general protection fault in del_gendisk run #8: crashed: general protection fault in del_gendisk run #9: crashed: general protection fault in del_gendisk # git bisect bad e06796855dc7e4495e27cb1fb5821f334798e1ed Bisecting: 5 revisions left to test after this (roughly 3 steps) [9520a2129fbeb10150ff8d7e08ed26662a27d334] ANDROID: ABI: Update allowed list for galaxy testing commit 9520a2129fbeb10150ff8d7e08ed26662a27d334 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: f765f9488078797e0e690e0b8213a7939b051942a33a9adf58cf41d8bc680da9 run #0: crashed: general protection fault in kernfs_name_hash run #1: crashed: general protection fault in kernfs_name_hash run #2: crashed: general protection fault in kernfs_name_hash run #3: crashed: general protection fault in kernfs_name_hash run #4: crashed: general protection fault in kernfs_name_hash run #5: crashed: general protection fault in kernfs_name_hash run #6: crashed: general protection fault in del_gendisk run #7: crashed: general protection fault in del_gendisk run #8: crashed: general protection fault in del_gendisk run #9: crashed: general protection fault in del_gendisk # git bisect bad 9520a2129fbeb10150ff8d7e08ed26662a27d334 Bisecting: 1 revision left to test after this (roughly 1 step) [bda49ad0602e5250a9d3dd61deda19d3e5615c54] FROMGIT: loop: Select I/O scheduler 'none' from inside add_disk() testing commit bda49ad0602e5250a9d3dd61deda19d3e5615c54 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 5231fca8f243b4eb5551014c3d72ea66a0a8a63ac4f406a36141e1bf7bd69eed run #0: crashed: general protection fault in del_gendisk run #1: crashed: general protection fault in kernfs_name_hash run #2: crashed: general protection fault in del_gendisk run #3: crashed: general protection fault in kernfs_name_hash run #4: crashed: general protection fault in del_gendisk run #5: crashed: general protection fault in del_gendisk run #6: crashed: general protection fault in del_gendisk run #7: crashed: general protection fault in del_gendisk run #8: crashed: general protection fault in del_gendisk run #9: crashed: general protection fault in del_gendisk # git bisect bad bda49ad0602e5250a9d3dd61deda19d3e5615c54 Bisecting: 1 revision left to test after this (roughly 1 step) [8914725a582861666a2a298efbcb5ae7613a47b7] FROMGIT: usb: typec: tcpm: Keep other events when receiving FRS and Sourcing_vbus events testing commit 8914725a582861666a2a298efbcb5ae7613a47b7 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: eeb073d0479034a12dad8c31d978b286ef1ccdeab0d55cbea4a875069618a424 all runs: OK # git bisect good 8914725a582861666a2a298efbcb5ae7613a47b7 Bisecting: 0 revisions left to test after this (roughly 0 steps) [d8b946254effbe36780f0b855da509a07470b8d2] FROMGIT: blk-mq: Introduce the BLK_MQ_F_NO_SCHED_BY_DEFAULT flag testing commit d8b946254effbe36780f0b855da509a07470b8d2 compiler: gcc (GCC) 10.2.1 20210217, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: ad7b255ae0988dbf402807a93388d18168c732c8794ebd6a90b92fd7743c6dc4 all runs: OK # git bisect good d8b946254effbe36780f0b855da509a07470b8d2 bda49ad0602e5250a9d3dd61deda19d3e5615c54 is the first bad commit commit bda49ad0602e5250a9d3dd61deda19d3e5615c54 Author: Bart Van Assche Date: Mon Aug 2 10:05:29 2021 -0700 FROMGIT: loop: Select I/O scheduler 'none' from inside add_disk() We noticed that the user interface of Android devices becomes very slow under memory pressure. This is because Android uses the zram driver on top of the loop driver for swapping, because under memory pressure the swap code alternates reads and writes quickly, because mq-deadline is the default scheduler for loop devices and because mq-deadline delays writes by five seconds for such a workload with default settings. Fix this by making the kernel select I/O scheduler 'none' from inside add_disk() for loop devices. This default can be overridden at any time from user space, e.g. via a udev rule. This approach has an advantage compared to changing the I/O scheduler from userspace from 'mq-deadline' into 'none', namely that synchronize_rcu() does not get called. Additionally, this patch reduces the Android boot time on my test setup with 0.5 seconds compared to configuring the loop I/O scheduler from user space. Signed-off-by: Bart Van Assche Bug: 194450129 (cherry picked from commit 2112f5c1330a671fa852051d85cb9eadc05d7eb7 git://git.kernel.dk/linux-block/ for-5.15/block) Change-Id: I6f9579b4cd2cb22fcb5c858d4f292f1870336fdd Signed-off-by: Bart Van Assche drivers/block/loop.c | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) culprit signature: 5231fca8f243b4eb5551014c3d72ea66a0a8a63ac4f406a36141e1bf7bd69eed parent signature: ad7b255ae0988dbf402807a93388d18168c732c8794ebd6a90b92fd7743c6dc4 revisions tested: 40, total time: 5h23m37.682401208s (build: 3h32m1.018502206s, test: 1h44m37.051345291s) first bad commit: bda49ad0602e5250a9d3dd61deda19d3e5615c54 FROMGIT: loop: Select I/O scheduler 'none' from inside add_disk() recipients (to): ["axboe@kernel.dk" "bvanassche@acm.org" "bvanassche@google.com" "linux-block@vger.kernel.org"] recipients (cc): ["linux-kernel@vger.kernel.org"] crash: general protection fault in del_gendisk Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007ffc46516738 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f535f7010a9 RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000005 RBP: 00007ffc46516750 R08: 0000000000000001 R09: 0000000000000001 R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000004 R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 ---[ end trace 24ac1218322fb734 ]--- general protection fault, probably for non-canonical address 0xdffffc000000001a: 0000 [#1] PREEMPT SMP KASAN KASAN: null-ptr-deref in range [0x00000000000000d0-0x00000000000000d7] CPU: 0 PID: 412 Comm: syz-executor199 Tainted: G W 5.10.43-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 RIP: 0010:kill_device drivers/base/core.c:3354 [inline] RIP: 0010:device_del+0xe3/0xd00 drivers/base/core.c:3382 Code: c1 ea 03 80 3c 02 00 0f 85 c5 0a 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 63 68 49 8d bc 24 d0 00 00 00 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 06 0f 8e a6 09 00 00 41 0f b6 84 24 d0 00 00 RSP: 0018:ffffc9000053fca0 EFLAGS: 00010202 RAX: dffffc0000000000 RBX: ffff88810a302068 RCX: ffffffff84262aa9 RDX: 000000000000001a RSI: 0000000000000008 RDI: 00000000000000d0 RBP: ffffc9000053fd58 R08: 0000000000000001 R09: ffffc9000053fc3f R10: fffff520000a7f87 R11: 0000000000000000 R12: 0000000000000000 R13: ffff88810a302108 R14: fffffbfff0cdf1c8 R15: 0000000000000008 FS: 0000555556c5c300(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f535f7309e0 CR3: 0000000117923000 CR4: 00000000003506b0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Call Trace: del_gendisk+0x611/0xa60 block/genhd.c:953 loop_remove drivers/block/loop.c:2194 [inline] loop_control_ioctl drivers/block/loop.c:2293 [inline] loop_control_ioctl+0x30d/0x3d0 drivers/block/loop.c:2259 vfs_ioctl fs/ioctl.c:48 [inline] __do_sys_ioctl fs/ioctl.c:753 [inline] __se_sys_ioctl fs/ioctl.c:739 [inline] __x64_sys_ioctl+0x129/0x1a0 fs/ioctl.c:739 do_syscall_64+0x32/0x80 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x7f535f7010a9 Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007ffc46516738 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f535f7010a9 RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000005 RBP: 00007ffc46516750 R08: 0000000000000001 R09: 0000000000000001 R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000004 R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 Modules linked in: ---[ end trace 24ac1218322fb735 ]--- RIP: 0010:kill_device drivers/base/core.c:3354 [inline] RIP: 0010:device_del+0xe3/0xd00 drivers/base/core.c:3382 Code: c1 ea 03 80 3c 02 00 0f 85 c5 0a 00 00 48 b8 00 00 00 00 00 fc ff df 4c 8b 63 68 49 8d bc 24 d0 00 00 00 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 06 0f 8e a6 09 00 00 41 0f b6 84 24 d0 00 00 RSP: 0018:ffffc9000053fca0 EFLAGS: 00010202 RAX: dffffc0000000000 RBX: ffff88810a302068 RCX: ffffffff84262aa9 RDX: 000000000000001a RSI: 0000000000000008 RDI: 00000000000000d0 RBP: ffffc9000053fd58 R08: 0000000000000001 R09: ffffc9000053fc3f R10: fffff520000a7f87 R11: 0000000000000000 R12: 0000000000000000 R13: ffff88810a302108 R14: fffffbfff0cdf1c8 R15: 0000000000000008 FS: 0000555556c5c300(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f535f7309e0 CR3: 0000000117923000 CR4: 00000000003506b0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 ---------------- Code disassembly (best guess): 0: 28 00 sub %al,(%rax) 2: 00 00 add %al,(%rax) 4: 75 05 jne 0xb 6: 48 83 c4 28 add $0x28,%rsp a: c3 retq b: e8 b1 14 00 00 callq 0x14c1 10: 90 nop 11: 48 89 f8 mov %rdi,%rax 14: 48 89 f7 mov %rsi,%rdi 17: 48 89 d6 mov %rdx,%rsi 1a: 48 89 ca mov %rcx,%rdx 1d: 4d 89 c2 mov %r8,%r10 20: 4d 89 c8 mov %r9,%r8 23: 4c 8b 4c 24 08 mov 0x8(%rsp),%r9 28: 0f 05 syscall * 2a: 48 3d 01 f0 ff ff cmp $0xfffffffffffff001,%rax <-- trapping instruction 30: 73 01 jae 0x33 32: c3 retq 33: 48 c7 c1 c0 ff ff ff mov $0xffffffffffffffc0,%rcx 3a: f7 d8 neg %eax 3c: 64 89 01 mov %eax,%fs:(%rcx) 3f: 48 rex.W